On Fri, 1 Mar 2024 21:56, Daniel Kahn Gillmor said:
> For example, GnuPG could instead offer an interface with explicit
> options to allow the user to choose to match certificates by
> fingerprint, or by e-mail address, or by name, or by full User ID, but
Simply prefix the fingerprint with 0x
On Fri, Mar 1, 2024 at 8:57 PM Daniel Kahn Gillmor via Gnupg-users
wrote:
> I agree with you that it's nice to refer to people by human-memorable
> names. I just wish it was safe to do so.
I would consider it is safe to do so. It is in fact mostly the entire purpose
of GPG to identify the
On Fri 2024-03-01 17:06:09 +0100, Ingo Klöcker wrote:
> On Donnerstag, 29. Februar 2024 21:21:42 CET Daniel Kahn Gillmor wrote:
>> human-readable names for certificates. But i don't see how to use that
>> safely while dealing with GnuPG's risky implementation choices here.
>
> Allowing recipients
On Donnerstag, 29. Februar 2024 21:21:42 CET Daniel Kahn Gillmor wrote:
> human-readable names for certificates. But i don't see how to use that
> safely while dealing with GnuPG's risky implementation choices here.
Allowing recipients to be specified by email address (or some other part of a
El día jueves, febrero 29, 2024 a las 01:40:53 +0100, Ingo Klöcker escribió:
> "CCID L5" doesn't strike me as a sufficiently unique identifier for a key. If
> I
> add a (secondary) user ID "CCID L5" to my key and trick Matthias into
> importing it won't pass start encrypting their passwords
On Mittwoch, 28. Februar 2024 17:30:21 CET Werner Koch via Gnupg-users wrote:
> On Wed, 28 Feb 2024 10:55, Matthias Apitz said:
> > purism@pureos:~$ cat .password-store/.gpg-id
> > CCID L5
>
> Which means that it encrypts to "CCID L5". pass parses this using
>
> while read -r gpg_id; do
On Wed, 28 Feb 2024 17:41, Jacob Bachmeyer said:
> As Werner mentioned, you can also have different .gpg-id files for
> different parts of your password store, if you wanted some passwords
> to only be available with certain smartcards.
FWIW: The C3S uses pass for their teams and meik wrote a
On Wed, 28 Feb 2024 17:40, Jacob Bachmeyer said:
> Or even Windows, which remains disturbingly common in applications
> that probably need far less attack surface, like industrial control
> systems... (Is the stupidity of management a main driver of Shamir's
> law?)
Often true but the real
Matthias Apitz wrote:
El día miércoles, febrero 28, 2024 a las 10:32:43 +0100, Werner Koch via
Gnupg-users escribió:
On Tue, 27 Feb 2024 20:52, Jacob Bachmeyer said:
Therefore, pass(1) almost certainly has its own list of keys stored
pass stores the fingerprints of the keys
Werner Koch wrote:
On Tue, 27 Feb 2024 20:52, Jacob Bachmeyer said:
[...]
logarithm problem and /vice versa/. Accordingly, RSA1024 is now
considered sufficiently dubious that some implementations no longer
support it, such as the go-crypto/openpgp library used by the newer
Which is a
On Wed, 28 Feb 2024 10:55, Matthias Apitz said:
> purism@pureos:~$ cat .password-store/.gpg-id
> CCID L5
Which means that it encrypts to "CCID L5". pass parses this using
while read -r gpg_id; do
gpg_id="${gpg_id%%#*}" # strip comment
[[ -n $gpg_id ]] ||
El día miércoles, febrero 28, 2024 a las 10:32:43 +0100, Werner Koch via
Gnupg-users escribió:
> On Tue, 27 Feb 2024 20:52, Jacob Bachmeyer said:
>
> > Therefore, pass(1) almost certainly has its own list of keys stored
>
> pass stores the fingerprints of the keys in a .gpg-id file and allows
On Tue, 27 Feb 2024 20:52, Jacob Bachmeyer said:
> Therefore, pass(1) almost certainly has its own list of keys stored
pass stores the fingerprints of the keys in a .gpg-id file and allows to
set different ones per directories.
> logarithm problem and /vice versa/. Accordingly, RSA1024 is now
El día martes, febrero 27, 2024 a las 08:52:55 -0600, Jacob Bachmeyer via
Gnupg-users escribió:
> > It says:
> >
> > purism@pureos:~$ gpg --list-keys
> > /home/purism/.gnupg/pubring.kbx
> > ---
> > pub rsa2048 2021-10-30 [SC]
> >
Matthias Apitz wrote:
El día lunes, febrero 26, 2024 a las 06:40:26 -0600, Jacob Bachmeyer via
Gnupg-users escribió:
Matthias Apitz wrote:
[...]
Said/showed that, I can't imagine that, when I SCP the file
.password-store/test.gpg to another mobile with another OpenPGP card,
that this
On Tue, 27 Feb 2024 10:07, Matthias Apitz said:
> I've never done anything with this and expected it also at date
> 2021-10-30 (when I initialized the OpenPGP card in the mobile L5).
The pubring.kbx is used for various things. For example we also store
"ephemeral keys" for X.509 (those we
El día lunes, febrero 26, 2024 a las 06:40:26 -0600, Jacob Bachmeyer via
Gnupg-users escribió:
> Matthias Apitz wrote:
> > [...]
> > Said/showed that, I can't imagine that, when I SCP the file
> > .password-store/test.gpg to another mobile with another OpenPGP card,
> > that this system would be
Matthias Apitz wrote:
[...]
Said/showed that, I can't imagine that, when I SCP the file
.password-store/test.gpg to another mobile with another OpenPGP card,
that this system would be able to decrypt the file and reencrypt it
again with the new card.
Correct. You must first copy the *new*
El día martes, febrero 13, 2024 a las 11:04:31a. m. +0100, Werner Koch via
Gnupg-users escribió:
> On Fri, 9 Feb 2024 15:36, Matthias Apitz said:
>
> > So, can I buy this card here in Europe or even in Germany?
>
> floss-shop.de
Only for the record:
Meanwhile I bought the 2nd OpenPGP card
Some Javacards are available in at least larger SIM form factors. IIRC
the NXP J3H145 was available SIM-cut from Smartcard Focus at some
point, but it has been a while since I ordered one.
If it's an option for you to install an OpenPGP applet such as
SmartPGP
Am 20.02.24 um 17:20 schrieb Jakob Bohm via Gnupg-users:
On 2024-02-17 12:37, Juergen BRUCKNER via Gnupg-users wrote:
Hello Jacob,
Am 17.02.24 um 12:04 schrieb Jakob Bohm via Gnupg-users:
[...]
I don't know exactly how the situation about this is in Germany. But
here in Austria many mobile
On 2024-02-17 12:37, Juergen BRUCKNER via Gnupg-users wrote:
Hello Jacob,
Am 17.02.24 um 12:04 schrieb Jakob Bohm via Gnupg-users:
[...]
I don't know exactly how the situation about this is in Germany. But
here in Austria many mobile phone shops have a SIM card punch with
which you can punch
Hello Jacob,
Am 17.02.24 um 12:04 schrieb Jakob Bohm via Gnupg-users:
[...]
I don't know exactly how the situation about this is in Germany. But
here in Austria many mobile phone shops have a SIM card punch with
which you can punch out a micro-SIM or nano-SIM from a standard-SIM.
In some
On 2024-02-15 18:42, Juergen BRUCKNER via Gnupg-users wrote:
Hello Matthias,
Am 13.02.24 um 17:32 schrieb Matthias Apitz:
We need here 'Microm SIM'. And I talked to the owner of floss-shop. They
do not offer a way to pop out Micro SIM.
I don't know exactly how the situation about this is in
Hello Matthias,
Am 13.02.24 um 17:32 schrieb Matthias Apitz:
We need here 'Microm SIM'. And I talked to the owner of floss-shop. They
do not offer a way to pop out Micro SIM.
I don't know exactly how the situation about this is in Germany. But
here in Austria many mobile phone shops have a
On Tue, 13 Feb 2024 17:32, Matthias Apitz said:
> We need here 'Microm SIM'. And I talked to the owner of floss-shop. They
> do not offer a way to pop out Micro SIM.
I simply uses scissors to cut them out and those cards work. Granted I
don't use the Librem regulary (if at all), but the card
El día martes, febrero 13, 2024 a las 12:47:13 +0100, Klaus Ethgen escribió:
> Hi,
>
> Am Fr den 9. Feb 2024 um 15:36 schrieb Matthias Apitz:
> > Next question: Can I transfer somehow the key from one card to the
> > other to use the same encrypted files foo.gpg from my password store:
> >
> >
> On 13 Feb 2024, at 17:32, Matthias Apitz wrote:
>
> El día martes, febrero 13, 2024 a las 09:57:17a. m. -0500, Henning Follmann
> escribió:
>
>> On Tue, Feb 13, 2024 at 02:32:04PM +0100, Matthias Apitz wrote:
>>> El día martes, febrero 13, 2024 a las 11:04:31a. m. +0100, Werner Koch via
El día martes, febrero 13, 2024 a las 09:57:17a. m. -0500, Henning Follmann
escribió:
> On Tue, Feb 13, 2024 at 02:32:04PM +0100, Matthias Apitz wrote:
> > El día martes, febrero 13, 2024 a las 11:04:31a. m. +0100, Werner Koch via
> > Gnupg-users escribió:
> >
> > > On Fri, 9 Feb 2024 15:36,
On Tue, Feb 13, 2024 at 02:32:04PM +0100, Matthias Apitz wrote:
> El día martes, febrero 13, 2024 a las 11:04:31a. m. +0100, Werner Koch via
> Gnupg-users escribió:
>
> > On Fri, 9 Feb 2024 15:36, Matthias Apitz said:
> >
> > > So, can I buy this card here in Europe or even in Germany?
> >
>
El día martes, febrero 13, 2024 a las 03:40:12p. m. +0100, Jakob Bohm via
Gnupg-users escribió:
> On 2024-02-13 14:32, Matthias Apitz wrote:
> > El día martes, febrero 13, 2024 a las 11:04:31a. m. +0100, Werner Koch via
> > Gnupg-users escribió:
> >
> > > On Fri, 9 Feb 2024 15:36, Matthias
On 2024-02-13 14:32, Matthias Apitz wrote:
El día martes, febrero 13, 2024 a las 11:04:31a. m. +0100, Werner Koch via
Gnupg-users escribió:
On Fri, 9 Feb 2024 15:36, Matthias Apitz said:
So, can I buy this card here in Europe or even in Germany?
floss-shop.de
I've contacted
El día martes, febrero 13, 2024 a las 11:04:31a. m. +0100, Werner Koch via
Gnupg-users escribió:
> On Fri, 9 Feb 2024 15:36, Matthias Apitz said:
>
> > So, can I buy this card here in Europe or even in Germany?
>
> floss-shop.de
I've contacted floss-shop.de. They can not provide (i.e. cut)
Hi,
Am Fr den 9. Feb 2024 um 15:36 schrieb Matthias Apitz:
> Next question: Can I transfer somehow the key from one card to the
> other to use the same encrypted files foo.gpg from my password store:
>
> purism@pureos:~$ find .password-store/ -type f | wc -l
> 373
Well, pass has its mechanism
On Fri, 9 Feb 2024 15:36, Matthias Apitz said:
> So, can I buy this card here in Europe or even in Germany?
floss-shop.de
> If not, I could with a script decrypt all the files in this tree and
> encrypt them again after setup the card. But, it would be better just
> copy the files over by SCP,
Hello Matthias,
Am 09.02.24 um 15:36 schrieb Matthias Apitz:
So, can I buy this card here in Europe or even in Germany?
yes you can buy this Card also in Europe:
https://www.floss-shop.de
https://www.cryptoshop.com
or you can also buy a USB/NFC-Device at Nitrokey
https://nitrokey.com
I
On 2024-02-09 14:36, Matthias Apitz wrote:
Next question: Can I transfer somehow the key from one card to the
other to use the same encrypted files foo.gpg from my password store:
purism@pureos:~$ find .password-store/ -type f | wc -l
373
No, the entire point of an openpgp card is that you
I do use an OpenPGP-card, bought from Purism in one of my L5 mobiles and I
want to buy a second one for my other L5. I use two L5, one in Europe,
the other in Cuba with a cuban SIM card. I could buy the 2nd card in
Purism to, but would have to pay $65 shipping fee for the $15 card.
So, can I buy
38 matches
Mail list logo